CVE-2017-2277

WG-C10 v3.0.79 and earlier allows an attacker to bypass access restrictions to obtain or alter information stored in the external storage connected to the product via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.1 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
sonywg-c10_firmware
𝑥
≤ 3.0.79
𝑥
= Vulnerable software versions
References
https://esupport.sony.com/US/p/news-item.pl?news_id=527&mdl=WGC10
https://jvn.jp/en/jp/JVN77412145/index.html
https://esupport.sony.com/US/p/news-item.pl?news_id=527&mdl=WGC10
https://jvn.jp/en/jp/JVN77412145/index.html